Cybersecurity Predictions for 2020

Just like previous years, 2020 was not a good year for cybersecurity news.  As we look to the new decade in 2020, here are some predictions for what we will see in the cybersecurity space.

Ransomware will continue to be a key problem

Cyber-criminals have continued to focus their attentions on healthcare, education, and government organizations as they found much success in 2019. Over 1,000 schools across the US fell victim to ransomware and hospitals faced disruption of services and had to divert patients to other facilities after shutting down computer networks. Hundreds of managed IT clients found their systems inaccessible after their providers were compromised to distribute ransomware to the client networks.

And now several ransomware groups have started to exfiltrate data in order to force victims to pay ransoms. Many organizations had started to ensure that they had good backup systems in place and avoided paying ransoms, choosing to restore their systems from backup. But with this new twist to ransomware, companies now face the release of information and a data breach.

Ransomware operators are also setting up websites to publicly shame victims who do not want to pay the ransom, meaning that some companies that chose to restore systems will no longer have the option of keeping a ransomware attack out of public knowledge.

Data Breaches will stay in the headlines

It only took a few weeks for a data breach to hit the headlines in 2019 and 2020 will probably be no different. Payment system malware has become a favored method of stealing credit card information as we have seen high-profile Magecart malware infections and also a rash of POS malware infections affecting restaurant and gas station chains.

We can expect to see more data breaches hit the headlines resulting in acceptance that data breaches are just a way of life which we discussed in our post: “It’s a Trap: Data Breach Fatigue”.

IoT Security will be still be a major concern

As consumers geared up for Black Friday, the FBI issued a warning about the security of SmartTVs and how they could be compromised to spy on owners. Then there were the cases Nest and Ring being hacked to harass and terrorize families. With the wide publicization of the FBI’s warning and the Ring camera system hacks, consumers are becoming more aware that the smart devices in their homes can be turned against them to spy on them and they need to take steps to make sure they protect their privacy.

The California IoT law also goes into effect on January 1st and that will be something that both consumers and manufacturers will want to keep an eye on for its affects and implications for companies.